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MULTI-LEVEL SECURITY CDMA 
COMMUNICATIONS ARRANGEMENT 

FIELD OF THE INVENTION 
[001] The present invention relates in general to Code Division Multiple Access 

(CDMA) communications techniques. 

BACKGROUND 

[002] Various applications involving electronic systems require a combination 

of secure transmissions and high bandwidth in an arrangement that is reasonably 
affordable. For example, Automatic Target Recognition (ATR) applications may require 
transmission of a large quantity of data to multiple users. A network of computing nodes 
may process and exchange information. The transmissions must be reasonably resistant 
to jamming and interception, covert, and secure from discovery. 
[003] ATR-type applications also consume a great deal of bandwidth. For 

example, image files of many megabytes may require transmission and processing in real 
time. In addition, transmission of high-resolution imagery files to multiple users or nodes 
may be required. If too much time or bandwidth is consumed in transmitting data, 
missions may be jeopardized. 

[004] Various types of applications may also require multiple security levels in 

order to limit access to transmitted data. For example, a certain set of data may be 
classified within a certain security level and visible only to users having authorization to 
view data at that security level. Managing and controlling access to data of different 
security levels may be cumbersome. 

[005] The cost of a suitable communications arrangement may also be an 

important factor. For example, a communications arrangement that is prohibitively 
expensive may be deployed in a limited way, and a limited deployment may be 
marginally effective for a particular application. Thus, efforts to control the costs 
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associated with developing, implementing, and deploying electronic system applications 
must be made. 

[006] The present invention may address one or more of these and related issues. 
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SUMMARY 

[007] The various embodiments of the invention provide a communications 

arrangement having multiple levels of security. In one embodiment, a plurality of 
seedable code generators is configured to generate different sets of codes. A plurality of 
CDMA encoders are respectively coupled to the code generators, and each encodes input 
data using the set of codes generated by the coupled code generator. A plurality of 
CDMA decoders are similarly arranged for decoding input data. A node controller 
provides respective input seeds to the code generators and provides respective sets of 
codes from the code generators to paired encoders and decoders. An interconnect 
combines encoded data from the encoders into an output signal and transmits the output 
signal An input signal received by the interconnect interface is provided to each 
decoder. 

[008] The above summary of the present invention is not intended to describe 

each illustrated embodiment or implementation of the present invention. This is the 
purpose of the figures and the associated discussion which follows. 
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BRIEF DESCRIPTION OF THE DRAWINGS 
[009] The invention is described in connection with the embodiments illustrated 

in the following diagrams. 

[0010] FIG. 1 is a functional block diagram that illustrates a communications 

arrangement in accordance with various embodiments of the invention; 

[0011] FIG 2 A illustrates a ring interconnect; 

[0012] FIG. 2B illustrates a bus interconnect; 

[0013] FIG. 2C illustrates a star coupled interconnect; 

[0014] FIG. 2D illustrates a wireless interconnect; 

[0015] FIG. 2E illustrates a free-space optical interconnect; 

[0016] FIG. 3 is a functional block diagram of a subsystem that implements a 

free-space optical interface for a node in accordance with various embodiments of the 

invention; 

[0017] FIG. 4 A illustrates a code pattern for a first example security level; 

[0018] FIG. 4B illustrates a code pattern for a second example security level; 

[0019] FIG. 5 A is a timing diagram that shows an example period in which data 

is transmitted from a first node to a second node and from the first node to a third node; 
[0020] FIG. 5B illustrates the overlay of the example codes from FIGs. 4A and 

FIG. 4B; 

[0021] FIGs. 5C and 5D illustrate the period in which data is received by the 

second and third nodes referenced in FIG. 5A; 

[0022] FIG. 6 is a flow diagram that shows operations of the first, second, and 

third nodes in initializing and changing seeds that are used to generate codes used in 
encoding and decoding; 

[0023] FIG. 7 is a block diagram that illustrates functional components and 

operation of an encoding and decoding arrangement in accordance with one embodiment 
of the invention; and 

[0024] FIG. 8 is a block diagram of an encoding and decoding arrangement in 

accordance with various other embodiments of the invention. 
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DETAILED DESCRIPTION 
[0025] In the following description of various example embodiments, reference is 

made to the accompanying drawings which form a part hereof, and in which is shown by 
way of illustration various manners in which the invention may be practiced. It will be 
appreciated that other embodiments may be utilized, as structural and operational changes 
may be made without departing from the scope of the present invention. 
[0026] A communication system is disclosed that benefits from the ability to 

generate unique CDMA codes at various security levels to enable a high performance, 
multilevel secure interconnect structure. The system provides secure data links for 
dynamic nodes arranged as a decentralized network. Additionally, this communication 
system can apply to a variety of physical interconnect topologies and electrical/optical 
transmission formats. 

[0027] Each node in the communication network has a predefined number of 

security levels that may be used for transmitting or receiving data. For each of these 
security levels there is a unique code generator. The code generators implement a 
pseudo-random number generator function using an initial seed. All nodes at the same 
security level use the same initial seed and random number generator. Thus, nodes at the 
same security level may communicate using the same pseudo-randomly generated 
CDMA code. 

[0028] When a particular node wants to communicate with another node at the 

appropriate security level, a seed for the data transmission is sent from the source node to 
the destination node using an agreed upon initial code for that security level. The seed is 
then used by the pseudo-random number generators at the nodes to generate the CDMA 
encoding/decoding pattern for the data transmission to follow. Multiple security level 
isolation is maintained over a single, shared interconnect with different pseudo-random 
number generators at different security levels. 

[0029] FIG. 1 is a functional block diagram that illustrates a communications 

arrangement 100 in accordance with various embodiments of the invention. A number of 
nodes (e.g., 102, 104, 106, 108 and 110) are connected to a physical interconnect 1 12 that 
may be based on electrical, radio-frequency, or optical signals. Each node includes at 
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least one CDMA encoder, at least one CDMA decoder, a controller, and at least one code 
generator for a particular security level. Depending on application requirements, a node 
may include multiple components for transmitting and receiving over multiple security 
levels. For example, node 102 includes n encoders 120 and n decoders 122. 
Correspondingly, there are n code generators 124, 126, and 128, for example. Each code 
generator corresponds to a specific security level and provides the code used by one pair 
of the n encoders and decoders. 

[0030] Each of the code generators uses a pseudo-random number generator 

(RNG) that is initiated by a selected seed. For example, code generator 124 generates a 
code for security level, LI, and uses RNG 132, which begins with seed 134. Data passed 
from an application program at one node to an application in another node is encoded by 
the sender and decoded by the receiver using codes generated by like code generators. 
For example, if node 104 were to host an application that communicates at the LI 
security level, node 104 would also include a code generator that matches the function of 
code generator 124 using a like RNG that begins with the same seed. Only the nodes at 
the appropriate security level (having like code generators and using the same seed) are 
able to decode this information. This provides security protection during the 
transmission because other nodes receiving the information and not having the same 
security level code generator will not be able to decode the information. 
[0031] In one embodiment, the RNG at a security level is changed with each 

information transfer. It will be appreciated that the beginning and end of an information 
transfer may be defined according to the chosen protocol of the application. For 
example, an information transfer may consist of a single fixed-sized packet of 
information or may include multiple packets of various sizes in a conversational protocol. 
Each information transfer may have a minimum of two sub-transactions, one to send the 
next seed and one to send the actual information. Changing the seed on each information 
transfer decreases the probability of another node deciphering the code pattern because 
the seed will be different on every transfer. Controller 142 controls the changing of seeds 
to the various code generators 124, 126, and 128 and provides the codes for the different 
security levels to the encoders 120 and decoders 122. 
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[0032] Depending on implementation requirements, the nodes and constituent 

components may be implemented with various combinations of hardware and software. 
For example, the RNG, controller, and encoder/decoder functions may be implemented 
on a circuit board containing an implementation-driven combination of processors, 
ASICs, or FPGAs, and a node may be a workstation or mobile computing device. 
[0033] Interconnect interface 146 provides the physical interface between node 

102 and the interconnect 112. It will be appreciated that the capabilities and 
configuration of the interconnect interface depend on the topology of interconnect 112. 
For example, FIGs. 2A - 2E illustrate different interconnect topologies. 

[0034] FIG 2A illustrates a ring interconnect 202 where the information is passed 

using point-to-point interconnects with each node 204, 206, 208, and 210 passing the data 
to a successive node until the data arrives at the destination node. FIG. 2B illustrates a 
bus interconnect 222 where all information may be directly sent or received between 
nodes 224, 226, 228, and 230 from a single ORed interconnect. FIG. 2C illustrates a star 
coupled interconnect 232 where each transmit signal is combined and the composite 
signal is distributed to all of the nodes 234, 236, 238, and 240. FIG. 2D illustrates a 
wireless interconnect 252 in which each of nodes 254, 256, 258, and 260 transmits and 
receives an encoded RF signal. FIG. 2E illustrates a free-space optical interconnect 272 
in which each of nodes 274, 276, 278, and 280 transmit optical signals to destination 
nodes. In a free-space optical interconnect the node transmitting data must be optically 
aligned with the node intended to receive the data. To communicate with more than one 
node, a node needs to either have a transceiver that is re-positionable for line-of-sight 
transmissions with transceivers of the other nodes or have multiple optical transceivers 
placed in line-of-sight with the transceivers of the other nodes. 

[0035] FIG. 3 is a functional block diagram of a subsystem that implements a 

free-space optical interface for a node in accordance with various embodiments of the 
invention. The CDMA encoders and CDMA decoders described in FIG. 1 may be 
alternatively implemented with optical CDMA (OCDMA) encoders and decoders 302 
and 304, respectively. 
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[0036] It will be appreciated that CDMA encoders and decoders use RF 

frequencies and time to implement transmissions codes, whereas OCDMA encoders and 
decoders use wavelengths of light and time to implement transmission codes. Therefore, 
within the OCDMA encoders and decoders 302 and 304, respectively, are multi- 
wavelength optical transmitters and multi-wavelength filters which are time gated 
(similar to CDMA) to enable optically based transmissions. 

[0037] The optical media interface 308 combines the optically encoded data from 

multiple encoders and splits received optical signals as necessary to interface to multiple 
decoders. Additionally, optical amplification may be used to compensate for high 
splitting losses. An Optical CDMA (OCDMA) output signal may be optically 
transmitted by optical fiber or optically transmitted in free space by a free space optics 
(FSO) terminal unit 306. The FSO terminal unit 306 may contain the necessary 
equipment to enable an optical line-of-sight (LOS) transmission link between nodes. 
There are many approaches that could be used to obtain this link, such as using single or 
multiple lasers, adaptive optics or fast tracking gimbals, open loop RF link aided GPS 
based pointing and tracking or closed loop autonomous pointing and tracking. 

[0038] FIGs. 4A and 4B illustrate an example pair of optical code division multi- 

access (OCDMA) codes that may be used in association with two different security 
levels. The example codes illustrate how two different OCDMA codes may be used for 
different security levels and support simultaneous transmission of encoded data on the 
same interconnect, whether free space optical or fiber guided optical. It will be 
appreciated that these same concepts may be applied to electrical or RF CDMA 
implementations. 

[0039] FIG. 4 A illustrates the code pattern for security level, LI. The LI code 

pattern is 1 1 0 1 1 000. At time too the information is contained in optical wavelength X\ \ , at 
time toi the information is contained in optical wavelength Xqu at time tio the information 
is contained in optical wavelength X\o, and at time tn the information is contained in 
optical wavelength Xoo- 

[0040] FIG. 4B illustrates the code pattern for security level, L2. The L2 code 

pattern is 101 10001. At time too the information is contained in optical wavelength X\o 9 at 
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time toi the information is contained in optical wavelength at time ti 0 the information 
is contained in optical wavelength Ao 0 , and at time tn the information is contained in 
optical wavelength Xoi. Transmissions using the LI and L2 codes can coexist because the 
codes do not use the same optical wavelength at the same time. 

[0041] FIGs. 5A-D continue the example of FIGs. 4A and 4B and show how one 

node (node 1) can simultaneously transmit to both node 2 and node 3 using the same 
interconnect. FIG. 5 A is a timing diagram that shows a period in which data is 
transmitted from node 1 to node 2 and from a node 1 to node 3. FIG. 5B illustrates the 
overlay of the example codes from FIGs. 4A and FIG. 4B. The timeslots in FIG. 5B are 
aligned with the transmission period of FIG. 5A. FIGs. 5C and 5D illustrate the period in 
which data is received by nodes 2 and 3, respectively. It will be appreciated that nodes 2 
and 3 are respectively configured to use the corresponding codes from FIGs. 4A and 4B 
for decoding the received data. 

[0042] FIG. 6 is a flow diagram that shows operations of the first, second, and 

third nodes in initializing and changing seeds that are used to generate codes used in 
encoding and decoding. During initialization both nodes 1 and 2 initialize (blocks 602 
and 604) with a common seed (seedu-o). This results in nodes 1 and 2 using the same 
initial code (codeu-o) for initial transmissions (blocks 606 and 608) between nodes 1 and 

2 at security level 1. Line 609 illustrates a transmission from node 1 to node 2. At the 
same time that one code generator of node 1 and a code generator in node 2 are 
initializing with seedu-o, a second code generator in node 1 and a code generator in node 

3 initialize (blocks 610 and 612) with a seedL2-o for security level 2 transfers. This results 
in nodes 1 and 3 using the same initial code (codeL2-o) for initial transmissions (blocks 
614 and 616) between nodes 1 and 3 at security level 2. Line 618 illustrates a 
transmission from node 1 to node 3. The initial transmissions between node 1 and node 2 
and between node 1 and node 3 may be limited to determining whether the nodes 
successfully initialized and are capable of further communications. Thereafter, the seeds 
may be changed to enhance security. 
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[0043] Because it may be preferable for security purposes to change the seeds 

used for code generation, the seeds may be changed from the initialization seeds before 
transmitting sensitive information. This may be especially true, if a common non-secure 
code was used to begin initialization. In changing the code used in encoding/decoding, 
node 1 transmits a new seed (seed L i-i) to node 2 using the initial codeu-o to encode the 
seed (block 632). Node 2 uses code L i-o to decode the new seed and initializes using the 
new seedu-i (block 634). Likewise, node 1 initializes with the new seed L i-i (block 636). 
A similar code change occurs with the code generators used for transmissions between 
node 1 and node 3 as shown by blocks 638, 640, and 642. After both node 1 and node 2 
have initialized with the new seedu-1, transmissions may commence using codeLi-i 
(blocks 652 and 654). Similarly, after both nodes 1 and 3 have initialized with the new 
seedu-i, transmissions may commence using code L 2-i (blocks 656 and 658). 
[0044] In one embodiment, the sending and receiving nodes may have an agreed 

upon sequence of data that indicates a seed change is forthcoming. In an alternative 
embodiment, the sender and receiver may operate on fixed length data packets; the sender 
may be configured to change the seed before a new packet is sent, and the receiver may 
be configured to expect a seed change after having received a packet. 

[0045] The decoding and encoding arrangement illustrated in the node 1 02 of 

FIG. 1 may be implemented in alternative embodiments to address different security 
requirements. FIG. 7 illustrates one embodiment of an arrangement for a basic level of 
security, and FIG. 8 illustrates an embodiment that provides a greater level of security. 
FIG. 7 is a block diagram that illustrates functional components and operation of an 
encoding and decoding arrangement 700 in accordance with one embodiment of the 
invention. 

[0046] In one embodiment, RNG 702 may be implemented with a Linear 

Feedback Shift Register (LFSR). The LFSR begins with an initial seed 704 and 
generates a sequence of pseudo-random codes that are used for encoding data from an 
application. The pseudo-random codes are stored in First In First Out (FIFO) buffer 706 
and provided in order to encoder 708. Data values from the application are stored in 
FIFO buffer 710 and input to encoder 708 for encoding. 
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[0047] The encoded data is then transmitted to the intended destination node, 

which has RNG 702' that generates a sequence of pseudo-random codes that are identical 
to those generated by RNG 702. RNG 702' begins with seed 704\ which is the same as 
seed 704, and the code values are stored in FIFO buffer 706 \ The decoder 712 applies 
the codes from FIFO buffer 706' to the encoded data, and the decoded data values are 
output in buffer 714. It will be appreciated that within the same node, an encoder- 
decoder pair may operate from the same random code FIFO, e.g., 706. 

[0048] FIG. 8 is a block diagram of an encoding and decoding arrangement 800 

in accordance with various other embodiments of the invention. The RNGs 802 and 802' 
used in the approach of FIG. 8 are comparable to those described in the approach shown 
in FIG. 7. However, instead of sequentially using the generated codes as shown in FIG. 
7, the codes are shifted in FIFO order through a cipher translation table 804, and the data 
value to be encoded is used to lookup the code to be used. 

[0049] Using the cipher translation table entails a two step encoding/decoding 

process. The first step is the creation of the table and the second step is the transmission 
of the data until a pre-determined length when the cipher translation table is regenerated. 
The possible data values are stored in column 806, and the data value to be encoded is 
used to read a corresponding code value from the table. For example, if the current data 
value is 01 10, the random code value 1 is selected from the table and used by encoder 
808. 

[0050] In creating table 804, the data values are associated with specific rows in 

the table, and an initial set of random codes 0-n are stored in entries associated with the 
data values. When the table is regenerated (at intervals driven by implementation 
requirements, such as by time or byte count), one or more new random codes may be 
generated and stored in FIFO order in table 804. For example, if one new random code 
n+l is generated, random code 0 is removed from the table, random code 1 becomes 
associated with data value 0000, random code 2 become associated with data value 0110, 
random code 3 becomes associated with data value 1001, and random code n+\ is 
associated with data value 1011. If multiple new random codes are generated, the current 
random codes are shifted in FIFO order in the table by a like number of entries. 
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[0051] The decoder portion of a node includes an array of parallel decoders 814, 

816, 818, and 820. For each pseudo-random code entry in the cipher translation table 
804', there is a corresponding decoder (CDMA decoders 0 - ri). The RNG 802' 
generates pseudo-random codes that are shifted through the code entries in table 804' to 
build a corresponding cipher translation table on the decoding node. The creation and 
regeneration of table 804' is synchronized with the creation and regeneration of table 
804. 

[0052] The data to be decoded is input (line 812) to each of the decoders 814, 

816, 818, and 820. Each decoder decodes the input data using the random code from an 
associated one of the entries in the table 804'. For example, decoder 814 uses the random 
code in entry 822, which has random codeo in the example snapshot of the contents of 
table 804'. The decoded data values are input to selection logic 832, which determines 
which decoder correctly decoded the encoded data. For example, decoded data value 0 is 
input to the selection logic 832 on line 834, and decoded data value„ is input to the 
selection logic on line 836. 

[0053] The selection logic 832 uses the n decoded data values, the corresponding 

random codes used by the decoders, and the table 804' to determine which of decoded 
datao - data* is correct. For example, the random code provided to decoder 814 on line 
842 is also provided to the selection logic to correspond to the decoded datao. Similarly, 
the random code provided to decoder 820 on line 844 is also provided to the selection 
logic to correspond to the decoded data*. The selection logic uses each decoded data 
value to look up a random code in table 804'. Thus, table 804' functions as a look-up 
table with the input value provided on line 852, and the corresponding random code 
output on line 854. For each decoded data value, the selection logic compares the 
looked-up random code (line 854) to the random code used in generating the decoded 
data value. If the random codes are equal, then the decoded data value is the correct one 
of the n data values to output (line 862). For example, if decoded datao is used to lookup 
a random code from table 804', and the looked-up code (line 854) is equal to the random 
code used to generate the decoded data value (i.e., the code from table entry 822 that is 
provided on line 842 to decoder 814 and to the selection logic), then decoded datao is the 
value selected for output. It will be appreciated that the arrangements 700 and 800 may 
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have multiple instances of the illustrated logic for simultaneous transactions onto or from 
a single CDMA transmission. Additionally, the controller may monitor any common 
command/control channels used for delivering initial seeds and for diagnostics. 
[0054] It will be appreciated that various modifications and additions can be 

made to the preferred embodiments discussed hereinabove without departing from the 
scope of the present invention. Accordingly, the scope of the present invention should 
not be limited by the particular embodiments described above, but should be defined only 
by the claims set forth below and equivalents thereof. 
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